[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Duplicity-talk] Encrypting filenames
From: |
Nate Eldredge |
Subject: |
Re: [Duplicity-talk] Encrypting filenames |
Date: |
Wed, 2 Nov 2011 16:28:50 -0400 (EDT) |
On Wed, 2 Nov 2011, threexk threexk wrote:
How can you encrypt the filenames stored in a Duplicity backup? If I do
'duplicity list-current-files' it shows the filenames in the backup
without prompting for the passphrase. When I try to restore it prompts
for the passphrase.
The filenames are stored encrypted in the backup itself. However, an
unencrypted copy is kept in the archive directory (specified by
--archive-dir, located in ~/.cache/duplicity by default) on the local
machine. This is used to make it easier to restore.
This is probably not much of a security risk, because anyone with access
to the archive directory probably has access to the original files as
well, unless they have been deleted since the backup was made. However,
if it concerns you, you could delete the contents of the archive directory
after each run of duplicity. (The archive data is also stored, encrypted,
in the backup itself, so when you next attempt to run duplicity, it will
copy it back to the archive directory and ask you for the passphrase to
decrypt it.)
--
Nate Eldredge
address@hidden